NVD Vulnerability Detail

CVE-2008-3636

Summary	Integer overflow in the IopfCompleteRequest API in the kernel in Microsoft Windows 2000, XP, Server 2003, and Vista allows context-dependent attackers to gain privileges. NOTE: this issue was originally reported for GEARAspiWDM.sys 2.0.7.5 in Gear Software CD DVD Filter driver before 4.001.7, as used in other products including Apple iTunes and multiple Symantec and Norton products, which allows local users to gain privileges via repeated IoAttachDevice IOCTL calls to \\.\GEARAspiWDMDevice in this GEARAspiWDM.sys. However, the root cause is the integer overflow in the API call itself.
Publication Date	Sept. 11, 2008, 10:13 a.m.
Registration Date	Jan. 29, 2021, 1:40 p.m.
Last Update	Oct. 12, 2018, 5:48 a.m.

CVSS2.0 : HIGH
Score	7.2
Vector	AV:L/AC:L/Au:N/C:C/I:C/A:C
攻撃元区分(AV)	ローカル
攻撃条件の複雑さ(AC)	低
攻撃前の認証要否(Au)	不要
機密性への影響(C)	高
完全性への影響(I)	高
可用性への影響(A)	高
Get all privileges.	いいえ
Get user privileges	いいえ
Get other privileges	いいえ
User operation required	いいえ

Affected software configurations

Configuration1	or higher	or less	more than	less than
cpe:2.3:a:apple:itunes:1.0::windows:::::
cpe:2.3:a:apple:itunes:1.1.1::windows:::::
cpe:2.3:a:apple:itunes:1.1.2::windows:::::
cpe:2.3:a:apple:itunes:2.0::windows:::::
cpe:2.3:a:apple:itunes:2.0.1::windows:::::
cpe:2.3:a:apple:itunes:2.0.2::windows:::::
cpe:2.3:a:apple:itunes:2.0.3::windows:::::
cpe:2.3:a:apple:itunes:2.0.4::windows:::::
cpe:2.3:a:apple:itunes:3.0::windows:::::
cpe:2.3:a:apple:itunes:3.0.1::windows:::::
cpe:2.3:a:apple:itunes:4.0::windows:::::
cpe:2.3:a:apple:itunes:4.0.1::windows:::::
cpe:2.3:a:apple:itunes:4.1::windows:::::
cpe:2.3:a:apple:itunes:4.2::windows:::::
cpe:2.3:a:apple:itunes:4.2.72::windows:::::
cpe:2.3:a:apple:itunes:4.5::windows:::::
cpe:2.3:a:apple:itunes:4.6::windows:::::
cpe:2.3:a:apple:itunes:4.7::windows:::::
cpe:2.3:a:apple:itunes:4.7.1::windows:::::
cpe:2.3:a:apple:itunes:4.7.1.30::windows:::::
cpe:2.3:a:apple:itunes:4.8::windows:::::
cpe:2.3:a:apple:itunes:4.9::windows:::::
cpe:2.3:a:apple:itunes:5.0::windows:::::
cpe:2.3:a:apple:itunes:5.0.1::windows:::::
cpe:2.3:a:apple:itunes:6.0::windows:::::
cpe:2.3:a:apple:itunes:6.0.1::windows:::::
cpe:2.3:a:apple:itunes:6.0.2::windows:::::
cpe:2.3:a:apple:itunes:6.0.3::windows:::::
cpe:2.3:a:apple:itunes:6.0.4::windows:::::
cpe:2.3:a:apple:itunes:6.0.4.2::windows:::::
cpe:2.3:a:apple:itunes:6.0.5::windows:::::
cpe:2.3:a:apple:itunes:7.0.2::windows:::::
cpe:2.3:a:apple:itunes:7.3.2::windows:::::
cpe:2.3:a:apple:itunes:7.4::windows:::::
cpe:2.3:a:apple:itunes:7.4.1::windows:::::
cpe:2.3:a:apple:itunes:7.4.2::windows:::::
cpe:2.3:a:apple:itunes:7.4.3::windows:::::
cpe:2.3:a:apple:itunes:7.5::windows:::::
cpe:2.3:a:apple:itunes:7.6::windows:::::
cpe:2.3:a:apple:itunes:::windows:::::*		7.6.1
cpe:2.3:a:apple:itunes:7.6.2::windows:::::
cpe:2.3:a:apple:itunes:7.7::windows:::::
cpe:2.3:a:apple:itunes:7.7.1::windows:::::

Related information, measures and tools

No	URL	refsource	タグ
1	http://lists.apple.com/archives/security-announce//2008/Sep/msg00001.html	APPLE
2	http://securityresponse.symantec.com/avcenter/security/Content/2008.10.07a.html	CONFIRM
3	http://securitytracker.com/id?1020839	SECTRACK
4	http://support.apple.com/kb/HT3025	CONFIRM
5	http://www.gearsoftware.com/support/GEARAspi%20Security%20Information.pdf	CONFIRM
6	http://www.kb.cert.org/vuls/id/146896	CERT-VN	US Government Resource
7	http://www.securityfocus.com/archive/1/497131/100/0/threaded	BUGTRAQ
8	http://www.securityfocus.com/bid/31089	BID	Patch
9	http://www.securitytracker.com/id?1020997	SECTRACK
10	http://www.securitytracker.com/id?1020998	SECTRACK
11	http://www.securitytracker.com/id?1020999	SECTRACK
12	http://www.symantec.com/avcenter/security/Content/2008.10.07a.html	CONFIRM
13	http://www.vupen.com/english/advisories/2008/2526	VUPEN
14	http://www.vupen.com/english/advisories/2008/2769	VUPEN
15	http://www.vupen.com/english/advisories/2008/2770	VUPEN
16	http://www.wintercore.com/advisories/advisory_W021008.html	MISC
17	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6035	OVAL

Common Vulnerabilities List

No	CWE	Name	URL
1	CWE-189	数値処理の問題	https://cwe.mitre.org/data/definitions/189.html

Configuration1	or higher	or less	more than	less than
cpe:2.3:a:apple:itunes:1.0::windows:::::
cpe:2.3:a:apple:itunes:1.1.1::windows:::::
cpe:2.3:a:apple:itunes:1.1.2::windows:::::
cpe:2.3:a:apple:itunes:2.0::windows:::::
cpe:2.3:a:apple:itunes:2.0.1::windows:::::
cpe:2.3:a:apple:itunes:2.0.2::windows:::::
cpe:2.3:a:apple:itunes:2.0.3::windows:::::
cpe:2.3:a:apple:itunes:2.0.4::windows:::::
cpe:2.3:a:apple:itunes:3.0::windows:::::
cpe:2.3:a:apple:itunes:3.0.1::windows:::::
cpe:2.3:a:apple:itunes:4.0::windows:::::
cpe:2.3:a:apple:itunes:4.0.1::windows:::::
cpe:2.3:a:apple:itunes:4.1::windows:::::
cpe:2.3:a:apple:itunes:4.2::windows:::::
cpe:2.3:a:apple:itunes:4.2.72::windows:::::
cpe:2.3:a:apple:itunes:4.5::windows:::::
cpe:2.3:a:apple:itunes:4.6::windows:::::
cpe:2.3:a:apple:itunes:4.7::windows:::::
cpe:2.3:a:apple:itunes:4.7.1::windows:::::
cpe:2.3:a:apple:itunes:4.7.1.30::windows:::::
cpe:2.3:a:apple:itunes:4.8::windows:::::
cpe:2.3:a:apple:itunes:4.9::windows:::::
cpe:2.3:a:apple:itunes:5.0::windows:::::
cpe:2.3:a:apple:itunes:5.0.1::windows:::::
cpe:2.3:a:apple:itunes:6.0::windows:::::
cpe:2.3:a:apple:itunes:6.0.1::windows:::::
cpe:2.3:a:apple:itunes:6.0.2::windows:::::
cpe:2.3:a:apple:itunes:6.0.3::windows:::::
cpe:2.3:a:apple:itunes:6.0.4::windows:::::
cpe:2.3:a:apple:itunes:6.0.4.2::windows:::::
cpe:2.3:a:apple:itunes:6.0.5::windows:::::
cpe:2.3:a:apple:itunes:7.0.2::windows:::::
cpe:2.3:a:apple:itunes:7.3.2::windows:::::
cpe:2.3:a:apple:itunes:7.4::windows:::::
cpe:2.3:a:apple:itunes:7.4.1::windows:::::
cpe:2.3:a:apple:itunes:7.4.2::windows:::::
cpe:2.3:a:apple:itunes:7.4.3::windows:::::
cpe:2.3:a:apple:itunes:7.5::windows:::::
cpe:2.3:a:apple:itunes:7.6::windows:::::
cpe:2.3:a:apple:itunes:::windows:::::*		7.6.1
cpe:2.3:a:apple:itunes:7.6.2::windows:::::
cpe:2.3:a:apple:itunes:7.7::windows:::::
cpe:2.3:a:apple:itunes:7.7.1::windows:::::